| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
|
|
| |
[ci skip]
|
|\
| |
| |
| |
| | |
Prepare 11.10.7 release
See merge request gitlab-org/gitlab-ce!30067
|
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Fix gl_dropdown scrolling to top on assignee click
See merge request gitlab-org/gitlab-ce!29500
(cherry picked from commit 2a29f910592e82d8f8d108e15497dd2fbbbb07ca)
3130572f Fix gl_dropdown scrolling to top on assignee click
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Fix label click scrolling to top
Closes #61246
See merge request gitlab-org/gitlab-ce!29202
(cherry picked from commit 92b06c13bd12abf85f6beb18b3b5c2f0e38c2760)
c9c7fa7b Fix label click scrolling to top
|
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Revert a default GIT_DEPTH for MR pipeline
See merge request gitlab-org/gitlab-ce!28926
(cherry picked from commit 765917dc088bee52a3f95d76fc7f32d408a2af20)
dbd62232 Revert a default GIT_DEPTH for MR pipeline
|
|\ \
| |/
|/|
| |
| | |
Add client code to call GetObjectDirectorySize RPC
See merge request gitlab-org/gitlab-ce!29843
|
|/
|
|
| |
This includes the changes for GITALY_SERVER_VERSION and Gemfile
|
| |
|
|
|
| |
[ci skip]
|
|\
| |
| |
| |
| | |
Prepare 11.10.6 release
See merge request gitlab-org/gitlab-ce!28991
|
| |
| |
| |
| |
| |
| |
| |
| | |
Use a path for the related merge requests endpoint
Closes #61280
See merge request gitlab-org/gitlab-ce!28171
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Use source ref in pipeline webhook
Closes #61553
See merge request gitlab-org/gitlab-ce!28772
(cherry picked from commit 2714f85c1287e560d38c8de9f1f17c3aa3d4c8df)
7e05f3b7 Use source ref for pipeline webhook
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Fix height of input groups
Closes #61304, #61303, #59254, and #60778
See merge request gitlab-org/gitlab-ce!28495
(cherry picked from commit 52758b929fa71540f97cd241d1668ade795306a1)
360646ea Fix height of input groups
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
API: Fix recursive flag not working with Rugged get_tree_entries flag
Closes #61979
See merge request gitlab-org/gitlab-ce!28494
(cherry picked from commit d951f047198d3ee03604fb64f6ad96efae6cba54)
c1827f1c API: Fix recursive flag not working with Rugged get_tree_entries flag
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Fix project visibility level validation
Closes #59379
See merge request gitlab-org/gitlab-ce!28305
(cherry picked from commit 99637084b22abdf7b1f6d46daad80faf8181f3cd)
b5540112 Fix project visibility level validation
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Don't run full gc in AfterImportService
Closes gitlab-ee#11556
See merge request gitlab-org/gitlab-ce!28239
(cherry picked from commit 4c16ce118498a2e3b98ad069000031fa9c55fcd3)
36b1a2d7 Don't run full gc in AfterImportService
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
'ce-11099-removing-the-project-that-holds-the-insights-configuration-raises-an-error' into 'master'
Add remove_foreign_key_if_exists
See merge request gitlab-org/gitlab-ce!28172
(cherry picked from commit 7b7416d9862f52fe0f0a304eeeaaa4b8d65bc8eb)
24eff5e0 Add remove_foreign_key_if_exists
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Fix uploading of LFS tracked file through UI
Closes #61203
See merge request gitlab-org/gitlab-ce!28052
(cherry picked from commit 4d2d812463256003ab943df90a9c603821078a69)
3f192e8a Fix Lfs::FileTransformer to work with file objects
48fcdf1f Add changelog entry
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Allow a member to have an access level equal to parent group
Closes gitlab-ee#11323
See merge request gitlab-org/gitlab-ce!27913
(cherry picked from commit 2b3b0bb1847e5d910b3e5dc5e151f194c12d3907)
32ddc3fe Allow a member to have an access level equal to parent group
|
| |\
| | |
| | |
| | |
| | | |
Upgrade CI to use Chrome V73
See merge request gitlab-org/gitlab-ce!27863
|
| | |
| | |
| | |
| | |
| | |
| | | |
This backports
https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/27762 into the
11-10-stable branch in the hopes it resolves a number of flaky tests.
|
| | | |
|
| | | |
|
| |\ \
| | | |
| | | |
| | | |
| | | | |
[11.10] Use 3-way merge for squashing commits
See merge request gitlab-org/gitlab-ce!28078
|
| | | |
| | | |
| | | |
| | | | |
This upgrades Gitaly to 1.34.2 for 11-10-stable.
|
| | | | |
|
| | | |
| | | |
| | | | |
[ci skip]
|
|\ \ \ \
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
'11-10-stable'
Add DNS rebinding protection settings
See merge request gitlab/gitlabhq!3131
|
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
This was renamed in GitLab 11.11, so the backport needs to use
the original name.
|
| | | | | |
|
| | | | | |
|
|/ / / / |
|
|\ \ \ \
| | | | |
| | | | |
| | | | |
| | | | | |
Reject slug+uri concat if slug is deemed unsafe
See merge request gitlab/gitlabhq!3106
|
| |/ / /
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
First reported:
https://gitlab.com/gitlab-org/gitlab-ce/issues/60143
When the page slug is "javascript:" and we attempt to link to a relative
path (using `.` or `..`) the code will concatenate the slug and the uri.
This MR adds a guard to that concat step that will return `nil` if the
incoming slug matches against any of the "unsafe" slug regexes;
currently this is only for the slug "javascript:" but can be extended if
needed. Manually tested against a non-exhaustive list from OWASP of
common javascript XSS exploits that have to to with mangling the
"javascript:" method, and all are caught by this change or by existing
code that ingests the user-specified slug.
|
|\ \ \ \
| | | | |
| | | | |
| | | | |
| | | | | |
Persistent XSS in note objects CE
See merge request gitlab/gitlabhq!3080
|
| | | | | |
|
| | | | | |
|
| | | | | |
|
| | | | | |
|
| | | | | |
|
| | | | | |
|
| | | | | |
|
| | | | | |
|
| | | | | |
|
|\ \ \ \ \
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
'11-10-stable'
Fix url redaction for issue links
See merge request gitlab/gitlabhq!3090
|
| | |_|/ /
| |/| | | |
|
|\ \ \ \ \
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
Disallow invalid MR branch name
See merge request gitlab/gitlabhq!3094
|
| |/ / / /
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
Prevents refspec as branch name, which would bypass branch protection
when used in conjunction with rebase.
HEAD seems to be a special case with lots of occurrence,
so it is considered valid for now.
Another special case is `refs/head/*`, which can be imported.
|
|\ \ \ \ \
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
Hide issue title on unsubscribe for anonymous users
See merge request gitlab/gitlabhq!3100
|